[Webkit-unassigned] [Bug 70064] New: Chromium: The NPObjectWrapper class used by V8 bindings to wrap the window object is not allocated correctly.
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Oct 13 15:20:00 PDT 2011
https://bugs.webkit.org/show_bug.cgi?id=70064
Summary: Chromium: The NPObjectWrapper class used by V8
bindings to wrap the window object is not allocated
correctly.
Product: WebKit
Version: 528+ (Nightly build)
Platform: All
OS/Version: All
Status: NEW
Severity: Normal
Priority: P2
Component: WebKit Misc.
AssignedTo: webkit-unassigned at lists.webkit.org
ReportedBy: ananta at chromium.org
CC: japhet at chromium.org
This is a Chromium only bug. The NPAllocate function in this class should allocate the NPProxyObject
structure. It ends up allocating the NPObectWrapper instance which is wrong.
The getObjectForCall function in this class should return NULL if it fails to find the underlying NPObject.
It currently returns the same object back which could cause a recursive crash.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list